$ rpki-client -vvf rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa File: D57C98A88C0311EFAA53FF12C4F9AE02.roa (raw, json) Hash identifier: mbcYtTY7pzkjLAPzzBYkqLR1semAFFI9aiFhIVq/OQg= Subject key identifier: 54:0B:2D:0A:15:DE:19:58:2D:E1:78:3D:BD:89:C5:47:53:D1:70:13 Certificate issuer: /CN=A91E892A/serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Certificate serial: 1882 Authority key identifier: 23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa Signing time: Wed 16 Oct 2024 21:15:57 +0000 ROA not before: Wed 16 Oct 2024 21:15:57 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 64231 IP address blocks: 103.99.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6274 (0x1882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E892A/serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Validity Not Before: Oct 16 21:15:57 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67102d0c-b797 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:15:e0:05:89:16:96:19:ba:44:25:f8:5a: 14:d7:82:d1:a7:51:58:33:ec:4d:6a:f2:5c:f2:37: 83:33:16:01:83:95:2e:2a:e2:d3:24:74:3b:f1:42: 2a:df:78:30:1b:65:36:e1:83:69:78:80:b9:71:58: f1:ef:e3:19:79:21:c5:86:56:1b:35:99:4b:cb:ce: 34:62:d1:0c:dd:78:74:05:eb:d8:e0:0f:5f:d7:8f: 29:75:be:2a:59:05:56:3a:2a:87:70:01:69:ec:1d: 7d:54:94:6c:42:7a:9d:0d:b5:c8:f1:cf:b7:dc:a1: 5f:cb:a1:14:53:a4:d8:86:75:63:4b:fa:08:64:12: 40:58:c1:f2:07:f1:d6:40:86:5a:d5:03:c4:1f:98: e4:fe:54:82:c5:1a:43:5e:a4:f2:e6:ba:4a:ce:ae: 27:c7:1a:f1:12:2c:c6:93:f2:18:40:6b:9d:2b:db: 2c:c2:a8:72:f0:18:5c:fb:25:0b:29:7b:78:8c:7c: df:57:e6:09:e6:33:90:18:9e:3e:e8:d8:0d:62:a7: bf:a0:84:0c:e4:b3:7c:85:fa:7d:ed:d7:ad:ef:93: 1e:82:88:ac:13:cf:40:a8:72:6d:f0:8a:f1:57:10: 57:13:1c:75:81:cd:60:c1:93:d8:97:f5:62:e7:9f: 70:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:0B:2D:0A:15:DE:19:58:2D:E1:78:3D:BD:89:C5:47:53:D1:70:13 X509v3 Authority Key Identifier: keyid:23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.42.0/24 Signature Algorithm: sha256WithRSAEncryption cd:a0:48:3b:aa:e6:39:96:16:28:c2:30:50:e0:6c:10:2f:b3: bc:43:c2:26:ef:df:13:f9:72:14:0e:b3:ea:98:86:4b:a7:93: 2f:6e:af:74:42:79:e8:25:60:a7:13:40:c9:d3:80:d9:bb:2b: 90:8c:5c:a5:c0:d8:31:39:f2:18:a5:b0:31:6e:d2:b0:1d:74: 38:c8:51:bf:13:9c:03:33:45:d6:79:e5:fe:e4:fa:ac:dd:45: 3a:87:b6:f0:ff:fe:f5:13:a6:98:6f:79:e9:11:e6:dc:ad:f5: 04:64:44:81:d7:34:8f:72:19:e3:98:04:4f:c8:8f:37:c6:fb: 51:cc:3d:b9:37:a3:4d:d7:64:7b:62:d5:5e:88:0e:9e:fa:15: f6:15:fb:b7:cf:20:c9:cd:55:80:0b:24:45:b4:1e:5e:22:db: 15:5d:02:0c:88:87:31:23:38:91:26:dd:18:1b:97:10:78:2a: 48:c7:33:85:9f:88:4b:72:87:7e:d2:b1:e5:af:64:21:57:f9: f9:77:38:d0:e5:18:b9:fe:7d:55:ae:7e:69:c0:fe:37:5d:8a: d2:46:33:04:d9:40:27:df:4e:8a:d7:d8:cc:40:ac:72:93:a2: ef:f5:ac:b7:50:4c:f1:27:f6:6a:3a:c9:c7:02:b7:a1:9e:a0: 6d:b6:59:80 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MkExMTAvBgNVBAUTKDIzQjk2MDM3QUI4QUQyMzdFNjMyNkY3RUQwRjgxRTMx OEU4QTE0QUIwHhcNMjQxMDE2MjExNTU3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwMmQwYy1iNzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3YV4AWJFpYZukQl+FoU14LRp1FYM+xNavJc8jeDMxYBg5UuKuLTJHQ78UIq 33gwG2U24YNpeIC5cVjx7+MZeSHFhlYbNZlLy840YtEM3Xh0BevY4A9f148pdb4q WQVWOiqHcAFp7B19VJRsQnqdDbXI8c+33KFfy6EUU6TYhnVjS/oIZBJAWMHyB/HW QIZa1QPEH5jk/lSCxRpDXqTy5rpKzq4nxxrxEizGk/IYQGudK9sswqhy8Bhc+yUL KXt4jHzfV+YJ5jOQGJ4+6NgNYqe/oIQM5LN8hfp97det75MegoisE89AqHJt8Irx VxBXExx1gc1gwZPYl/Vi559wjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFQLLQoV 3hlYLeF4Pb2JxUdT0XATMB8GA1UdIwQYMBaAFCO5YDeritI35jJvftD4HjGOihSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkyQS9GODEwRTlBNDg4 MTUxMUU3OEJGN0QxNEVDNEY5QUUwMi9JN2xnTjZ1SzBqZm1NbTktMFBnZU1ZNktG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k3bGdONnVLMGpmbU1tOS0wUGdlTVk2S0ZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MkEvRjgxMEU5QTQ4ODE1MTFFNzhCRjdEMTRFQzRGOUFFMDIvRDU3Qzk4QTg4 QzAzMTFFRkFBNTNGRjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYyowDQYJKoZIhvcNAQELBQADggEBAM2gSDuq5jmWFijC MFDgbBAvs7xDwibv3xP5chQOs+qYhkunky9ur3RCeeglYKcTQMnTgNm7K5CMXKXA 2DE58hilsDFu0rAddDjIUb8TnAMzRdZ55f7k+qzdRTqHtvD//vUTpphveekR5tyt 9QRkRIHXNI9yGeOYBE/IjzfG+1HMPbk3o03XZHti1V6IDp76FfYV+7fPIMnNVYAL JEW0Hl4i2xVdAgyIhzEjOJEm3RgblxB4KkjHM4WfiEtyh37SseWvZCFX+fl3ONDl GLn+fVWufmnA/jdditJGMwTZQCffTorX2MxArHKTou/1rLdQTPEn9mo6yccCt6Ge oG22WYA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:21 2024 by rpki-client on console-ams.rpki-client.org